Integration & Automation
Category: Security, Identity, & Compliance
Save time with automated security checks of your Terraform scripts
Learn how to integrate Checkov into CodePipeline with fully automated pre-deployment compliance checks of your Terraform scripts, including built-in notifications. Our solution provides an end-to-end, automated CI/CD pipeline that allows you to stay compliant with AWS best-practices with minimal operational overhead.
Read parameters across AWS Regions with AWS CloudFormation custom resources
Learn to use CloudFormation custom resources in multistack AWS Cloud Development Kit (AWS CDK) applications to read parameters across AWS Regions.
Manage permission sets and account assignments in AWS IAM Identity Center with a CI/CD pipeline
Have you created permission sets and assigned them to AWS Identity and Access Management (IAM) groups in AWS Organizations? Have you used existing corporate identities with AWS IAM Identity Center (successor to AWS Single Sign-On) to grant Active Directory groups access to AWS accounts and applications? Save time and minimize errors by managing permission sets automatically with a continuous integration and continuous deployment (CI/CD) pipeline built with AWS developer tools.
Create a more secure LAMP stack with AWS WAF (web application firewall)
Learn how to create a more secure LAMP stack with AWS WAF, Route 53 domain, and AWS Certificate Manager. This post walks you through automation steps to deploy a highly available LAMP-stack application with a web application firewall.
Disaster recovery: 3 failover scenarios for your HAQM Aurora global database with Terraform (Part 2)
Simulate recovering an HAQM Aurora global database after a disaster. Walk through three failover scenarios, observe their effect on Terraform state, and learn how to maintain the global database topology and configuration using Terraform.
Collect custom metrics with HAQM CloudWatch strategic tagging
Learn how to use an HAQM CloudWatch agent to automate the collection of custom metrics for two HAQM EC2 instances. The solution is based on a tagging strategy combined with AWS Systems Manager State Manager to enforce specific CloudWatch agent configurations for EC2 instances that are tagged appropriately.
Prepare for faster disaster recovery: Deploy an HAQM Aurora global database with Terraform (Part 1)
Learn how to automate the deployment and management of an HAQM Aurora global database—across multiple AWS Regions—with Terraform. This architecture can provide disaster recovery from Region-wide outages with low recovery time objective (RTO) and recovery point objective (RPO).
Automate VPC tagging with AWS Control Tower lifecycle events
Automatically tag resources in an AWS account created by AWS Control Tower.
Automate IAM credential reports at scale across AWS
Automate and consolidate IAM credential reports for your AWS accounts using a scalable infrastructure-as-code automation.
Manage HAQM S3 Event Notifications using a Lambda function
Learn how to use an AWS Lambda function and custom AWS CloudFormation resources to manage your shared S3 Event Notifications.